Details

Description

SECURITY-125 (Combination filter Groovy script unsecured)

This vulnerability allows users with the job configuration
privilege to escalate his privileges, resulting in arbitrary code
execution to the master.

SECURITY-162 (directory traversal from artifacts via symlink)

This vulnerability allows users with the job configuration
privilege or users with commit access to the build script to
access arbitrary files/directories on the master, resulting in
the exposure of sensitive information, such as encryption keys.

This vulnerability allows attackers to create malicious XML
documents and feed that into Jenkins, which causes Jenkins to
retrieve arbitrary XML document on the server, resulting in the
exposure of sensitive information inside/outside Jenkins.

Severity

SECURITY-125 is rated critical. This attack can be
only mounted by users with some trust, but it results in arbitrary
code execution on the master.

SECURITY-162 is rated critical. This attack can be
only mounted by users with some trust, but it results in the
exposure of sensitive information.

SECURITY-163 is rated medium, as it results in the
loss of functionality.

SECURITY-165 is rated critical. This attack is
easy to mount, and it results in the exposure of sensitive
information.

SECURITY-166 is rated critical. For users who use
the affected feature, this attack results in arbitrary code
execution on the master.

SECURITY-167 is rated critical. This attack is
easy to mount, and it results in the exposure of sensitive information.